Serial No.: 09/703,884 48452-047 
AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listing, of claims in the 

application: 

Listing of claims : 

1. (currently amended) A method for providing multi-user file storage comprising 
the steps of: 

(a) enabling each user of a pre-subscribed user group of one or more users to 
operate an arbitrary client node at an arbitrary geographic location to communicate with a 
remote file server node via a wide area network, 

(b) enabling each user of the pre-subscribed user group to access the files of the 
file group via the respective client node in communication with the remote file server 
node via the wide area network, including permittin g, when the pre-subscribed user group 
includes at least two users, more than one user of the pre-subscribed user group to access 
the file group at the remote file server node simultaneously, and 

(c) maintaining the integrity of the files at the remote file server node by 
controlling each access to each of the files at the remote file server node so that each 
access to each the files at the remote file server is performed, if at all, on a respective 
portion of the respective file as most recently updated at the remote file server node, 
wherein the respective portion is less than all of the respective file, thereby enabling all 
native operating system application programming interfaces to operate so that all multi- 
user applications accessing the files function as if the remote server, which stores the 
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files, and client nodes, at which such multi-user applications execute, were on the same 
local area network. 



2. (original) The method of claim 1 further comprising the step of: 

(d) while a particular client node is in communication with the remote file server 
node, selectively downloading from the remote file server node to the particular client 
node via the wide area network a copy of at least a most recently updated portion of a 
particular file to be accessed by the particular client node and which the particular client 
node lacks, wherein at all times, each client node in communication with the remote file 
server node adheres to explicit and implicit file sharing modes specified by the native file 
application programming interfaces. 

3. (original) The method of claim 2 further comprising the steps of: 

(e) if the particular client node modifies the particular file while the particular 
client node is in communication with the remote file server node via the wide area 
network, uploading from the particular client node information for updating the copy of 
the particular file stored at the remote file server node for effecting the modifications to 
the particular file. 

4. (original) The method of claim 3 further comprising the step of effecting the 
modifications by storing an incremental change to the copy of the particular file on the 
remote file server node. 
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5. (original) The method of claim 3 further comprising the step of effecting the 
modifications by over-writing at the remote file server node the current copy of the 
particular file with a copy of the particular file as updated by the modifications. 

6. (original) The method of claim 3 further comprising the step of: 

(f) if a hoarding client node in communication with the remote file server node 
has indicated that it desires to hoard the particular file, then automatically downloading 
from the remote file server node to the hoarding client node the information for updating 
the copy of the particular file in response to the particular client node uploading the 
information for updating the copy of the particular file stored at the remote file server. 

7. (original) The method of claim 2 further comprising the steps of: 

(e) if the particular client node closes its communication channel with the remote 
file server node before closing the particular file then relinquishing the particular file at 
the remote file server node and enabling other client nodes in communication with the 
remote file server via the wide area network to access the particular file. 

8. (original) The method of claim 2 further comprising the steps of: 

(e) closing the communication channel between the particular client node and the 
remote file server node; and 

(f) enabling the particular client node to access the downloaded copy of the 
particular file while out of communication with the remote file server node. 
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9. (original) The method of claim 8 further comprising the step of: 

(g) if the particular client node modifies the downloaded copy of the particular 
file while out of communication with the remote file server node, then selectively 
enabling or preventing the updating of the copy of the particular file on the remote file 
server node according to modification information transparently and automatically 
uploaded from the particular client node when the particular client node re-establishes 
communication with the remote file server node via the wide area network, depending on 
the current modification status of the copy of the particular file at the remote file server 
node. 

10. (original) The method of claim 9 further comprising the steps of: 

(h) selectively placing in a conflict bin associated only with, and maintained at, 
the particular client node information that depends on either: 

(I) modifications to the downloaded copy of the particular file, made by 
the client node while out of communication with the remote file server node; or 

(II) modifications to the copy of the particular file at the remote file server 
node, made while the client node was out of communication with the remote file server 
node, 

depending on the type of the modifications to the downloaded copy and the type 
of the modifications to the copy at the remote file server node. 

11. (original) The method of claim 2 further comprising the step of: 
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(e) in response to determining that another client node has modified the particular 
file at the remote file server node, after the particular client node has downloaded the 
copy of the particular file, selectively invalidating the downloaded copy of the particular 
file at the particular client node, depending on the modification status of the copy of the 
particular file at the remote file server node. 

12. (original) The method of claim 1 1 further comprising the step of: 

(f) downloading from the remote file server node to the particular client node the 
valid copy of the file as modified by the other client node and enabling access by the 
particular client node to the valid downloaded copy of the particular file in lieu of the 
invalid downloaded copy of the particular file. 

13. (original) The method of claim 1 1 further comprising the steps of: 

(f) prior to step (e), closing the communication channel between the particular 
client node and the remote file server node, and 

(g) prior to step (e), re-establishing communication between the particular client 
node and the remote file server node. 

14. (original) The method of claim 1 further comprising the step of: 

(d) transparently to, and without specific action of, one of the users of a first client 
node in communication with the remote file server node via the wide area network, 
downloading from the remote file server node via the wide area network to the first client 
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node modifications to a copy of a particular file maintained at the remote file server node, 
wherein the modifications were made by another client node. 



15. (original) The method of claim 1 further comprising the step of: 

(d) providing an interface for adapting file access at a particular client node by 
designating at the particular client node each one or more of the accessible files of the file 
group as stored on a virtual storage device, and enabling access to the designated files in 
a fashion which is indistinguishable, by users of, and applications executing at, the first 
client node, with access to one or more files stored on a physical storage device that is 
locally present at the first client node. 

16. (original) The method of claim 15 further comprising the steps of: 

(e) storing on a storage device which is physically present locally to the particular 
client node a copy of each one or more of the designated accessible files, 

(f) if a user of, or an application executing at, the first client node, attempts to 
access a designated accessible file then: 

(I) accessing the valid copy of the designated accessible file stored in the 
locally physically present storage device, if a valid copy of the designated accessible file, 
for which access is attempted, is stored at the locally physically present storage device, 
and 

(II) downloading from the remote file server node to the particular client 
node via the wide area network, a copy of the designated accessible file and performing 
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the access on the downloaded copy, if no valid copy of the designated accessible file, for 
which access is attempted, is stored at the locally physically present storage device. 



17. (original) The method of claim 2 further comprising the step of: 

(e) preventing another client node from contemporaneously accessing a copy of 
the particular file according to a file sharing access mode which is incompatible to the 
file sharing access modes currently available to the particular client node for accessing 
the particular file. 

18. (original) The method of claim 1 further comprising the step of: 

(d) depending on the granularity of file sharing to which applications, executing 
on a group of two or more client nodes, adhere, permitting applications of each client 
node of the group to simultaneously access the same one of the files. 

19. (original) The method of claim 18 wherein certain files are not accessed 
directly by each client node, the method further comprising the step of: 

(e) enabling each client to contemporaneously indirectly access such certain files 
through an intermediary node which performs each such access directly on behalf of the 
client nodes. 

20. (original) The method of claim 1 further comprising the steps of: 

(d) transmitting a message to an internet email address of a user inviting the user 
to join the pre-subscribed user group, and 
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(e) using the information in the message, issuing a request to join the pre- 
subscribed user group from a client node operated by the user. 



21. (original) The method of claim 20 wherein in the step of using the 
information in the message, the message being usable only once to join the pre- 
subscribed user group. 

22. (original) The method of claim 1 further comprising the step of: 

(d) authenticating a connection between a particular client node and the remote 
file server node so that the particular client node verifies the identity of the remote server 
node, and the remote server node verifies the identity of the user of the particular client 
node. 

23. (original) The method of claim 22 further comprising the step of: 

(e) encrypting data of a file at the particular client node using an encryption 
methodology known to the client node but not known to the remote file server node, 

(f) uploading the encrypted data to the remote file server node, and 

(g) storing the encrypted file data at the remote file server node. 

24. (original) The method of claim 23 further comprising the steps of: 

(h) encrypting the file at the particular client node using a data key known only to 
the client node, 

(i) encrypting the data key using a public key, 
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(j) transmitting the encrypted data key to the remote file server node, and 
(k) storing the encrypted data key at the remote file server node, wherein the 
remote file server node lacks the private key necessary to decrypt the data key. 

25. (original) The method of claim 24 further comprising the steps of: 

(1) encrypting the data key at the particular client node using a second public key 

associated with another user of the pre-subscribed user group, 

(m) transmitting the second encrypted data key to the remote file server node, and 
(n) storing the second encrypted data key at the remote file server node, wherein 

both the particular client node and the remote file server node lack the private key 

necessary to decrypt the data key. 

26. (original) The method of claim 23 further comprising the steps of: 

(h) at the remote file server node, retrieving from storage the encrypted data of a 
particular file, 

(i) transmitting the encrypted data to a specific client node, 

(j) using a decryption methodology known to the specific client node but not 
known at the remote file server node, decrypting the data. 

27. (original) The method of claim 22 further comprising the steps of: 

(e) receiving at the remote file server node, a request from a specific client node 
to access a particular file, 
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(f) determining at the remote file server node whether or not the particular access 
requested by the specific client node is permitted by privilege access rights associated 
with the particular file, and 

(g) only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

28. (original) The method of claim 1 further comprising the steps of: 

(d) receiving at the remote file server node, a request from a specific client node 
to access a particular file, 

(e) determining at the remote file server node whether or not the particular access 
requested by the specific client node is permitted by privilege access rights associated 
with the particular file, and 

(f) only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

29. (original) The method of claim 1 further comprising the steps of: 

(d) transferring an encrypted key from the remote file server node to a particular 
client nodes via a secure channel, the key being encrypted using an encryption function 
not known locally at the remote file server node, 

(e) decrypting the transferred key at the particular client node, and 

(f) using the key at the particular client node to decrypt information of a file 
downloaded from the remote file server node or to encrypt information of a file prior to 
uploading for storage at the remote file server node. 
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30. (original) The method of claim 29 further comprising the step of: 
(g) compressing the information of the file prior to uploading the file or 

decompressing the information of the file subsequent to downloading the file. 

31 . (original) The method of claim 1 further comprising the step of: 
(d) compressing the information of the file prior to uploading the file or 

decompressing the information of the file subsequent to downloading the file. 

32. (original) The method of claim 1 further comprising the steps of: 

(d) enabling each user of another pre-subscribed user group of one or more users 
to access another group of files via a respective client node in communication with the 
remote server node via the wide area network, wherein each pre-subscribed user group 
includes a different subset of users but also have at least one particular user in common, 
wherein the particular user is able to contemporaneously access files in each group. 

33. (original) The method of claim 1 further comprising the step of: 

(d) enabling the users to access one or more of the files at one or more additional 
file server nodes. 

34. (original) The method of claim 33 wherein a particular client node is capable 
of communicating with the additional file server nodes remotely via a wide area network, 
the method further comprising the step of: 
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(e) the particular client node accessing a copy of a particular file on one of the 
remote file server node or a particular additional file server node which is most efficient 
for the particular client node. 

35. (original) The method of claim 33 wherein a particular client node is capable 
of communicating with at least a particular additional file server node via a local area 
network, the method further comprising the step of: 

(e) the particular client node accessing a copy of a particular file at the particular 
additional file server node via the local area network. 

36. (currently amended) A method for providing multi-user file storage 
comprising the steps of: 

(a) enabling each user of a pre-subscribed user group of one or more users 
operating an arbitrary client node at an arbitrary geographic location to communicate 
with said remote file server node via a wide area network, 

(b) enabling each user of the pre-subscribed user group to access the files of the 
file group via the respective client node in communication with the remote file server 
node via the wide area network, including permittin g, when the pre-subscribed user group 
includes at least two users, more than one user of the pre-subscribed user group to access 
the file group at the remote file server node simultaneously, and 

(c) providing an interface for adapting file access at a particular client node by 
designating at the particular client node each accessible file of the file group as stored on 
a virtual storage device, and enabling access to the designated files in a fashion which is 
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indistinguishable, by users of, and applications executing at, the particular client node, 
with access to one or more files stored on a physical storage device that is locally present 
at the particular client node. 

37. (original) The method of claim 36 further comprising the steps of: 

(d) storing on a storage device which is physically present locally to the particular 
client node a copy of one or more of the designated files, 

(e) if a user of, or an application executing at, the particular client node, attempts 
to access a designated accessible file then: 

(I) accessing the valid copy of the designated file stored in the locally 
physically present storage device, if a valid copy of the designated file, for which access 
is attempted, is stored at the locally physically present storage device, and 

(II) downloading from the remote file server node to the particular client 
node via the wide area network, a copy of the designated file and performing the access 
on the downloaded copy, if no valid copy of the designated file, for which access is 
attempted, is stored at the locally physically present storage device. 

38. (original) The method of claim 37 further comprising the step of: 

(f) preventing another client node from contemporaneously accessing a copy of 
the particular file according to a file sharing access mode which is incompatible to the 
file sharing access modes currently available to the particular client node for accessing 
the particular file. 
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39. (original) The method of claim 38 further comprising the step of: 

(g) depending on the granularity of file sharing to which applications, executing 
on a group of two or more client nodes, adhere, permitting applications of each client 
node of the group to simultaneously access the same file. 

40. (original) The method of claim 39 wherein certain files are not accessed 
directly by each client node, the method further comprising the step of: 

(h) enabling each client to contemporaneously indirectly access such certain files 
through an intermediary node which performs each such access directly on behalf of the 
client nodes. 

41. (original) The method of claim 38 further comprising the steps of: 

(g) transmitting a message to an internet email address of a user inviting the user 
to join the pre-subscribed user group, and 

(h) using the information in the message, issuing a request to join the pre- 
subscribed user group from a client node operated by the user. 

42. (original) The method of claim 41 wherein in the step of using the 
information in the message, the message being usable only once to join the pre- 
subscribed user group. 

43. (original) The method of claim 36 further comprising the step of: 
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(d) authenticating a connection between a particular client node and the remote 
file server node so that the particular client node verifies the identity of the remote server 
node, and the remote server node verifies the identity of the user of the particular client 
node. 

44. (original) The method of claim 43 further comprising the step of: 

(e) encrypting data of a file at the particular client node using an encryption 
methodology known to the client node but not known to the remote file server node, 

(f) uploading the encrypted data to the remote file server node, and 

(g) storing the encrypted file data at the remote file server node. 

45. (original) The method of claim 44 further comprising the steps of: 

(h) encrypting the file at the particular client node using a data key known only to 
the client node, 

(i) encrypting the data key using a public key, 

(j) transmitting the encrypted data key to the remote file server node, and 
(k) storing the encrypted data key at the remote file server node, wherein the 
remote file server node lacks the private key necessary to decrypt the data key. 

46. (original) The method of claim 45 further comprising the steps of: 

(1) encrypting the data key at the particular client node using a second public key 
associated with another user of the pre-subscribed user group, 

(m) transmitting the second encrypted data key to the remote file server node, and 
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(n) storing the second encrypted data key at the remote file server node, wherein 
both the particular client node and the remote file server node lack the private key 
necessary to decrypt the data key. 

47. (original) The method of claim 43 further comprising the steps of: 

(e) at the remote file server node, retrieving from storage the encrypted data of a 
particular file, 

(f) transmitting the encrypted data to a specific client node, and 

(g) using a decryption methodology known to the specific client node but not 
known at the remote file server node, decrypting the data. 

48. (original) The method of claim 43 further comprising the steps of: 

(e) receiving at the remote file server node, a request from a specific client node 
to access a particular file, 

(f) determining at the remote file server node whether or not the particular access 
requested by the specific client node is permitted by privilege access rights associated 
with the particular file, and 

(g) only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

49. (original) The method of claim 36 further comprising the steps of: 

(d) receiving at the remote file server node, a request from a specific client node 
to access a particular file, 
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(e) determining at the remote file server node whether or not the particular access 
requested by the specific client node is permitted by privilege access rights associated 
with the particular file, and 

(f) only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

50. (original) The method of claim 36 further comprising the steps of: 

(d) transferring an encrypted key from the remote file server node to a particular 
client nodes via a secure channel, the key being encrypted using an encryption function 
not known locally at the remote file server node, 

(e) decrypting the transferred key at the particular client node, and 

(f) using the key at the particular client node to decrypt information of a file 
downloaded from the remote file server node or to encrypt information of a file prior to 
uploading for storage at the remote file server node. 

51. (original) The method of claim 50 further comprising the step of: 

(g) compressing the information of the file prior to uploading the file or 
decompressing the information of the file subsequent to downloading the file. 

52. (original) The method of claim 36 further comprising the step of: 
(d) compressing the information of the file prior to uploading the file or 

decompressing the information of the file subsequent to downloading the file. 
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53. (original) The method of claim 36 further comprising the steps of: 

(d) enabling each user of another pre-subscribed user group of one or more users 
to access another group of files via a respective client node in communication with the 
remote server node via the wide area network, wherein each pre-subscribed user group 
includes a different subset of users but also have at least one particular user in common, 
wherein the particular user is able to contemporaneously access files in each group. 

54. (original) The method of claim 36 further comprising the step of: 

(d) enabling the users to access one or more of the files at one or more additional 
file server nodes. 

55. (original) The method of claim 54 wherein a particular client node is capable 
of communicating with the additional file server nodes remotely via a wide area network, 
the method further comprising the step of: 

(e) the particular client node accessing a copy of a particular file on one of the 
remote file server node or a particular additional file server node which is most efficient 
for the particular client node. 

56. (original) The method of claim 54 wherein a particular client node is capable 
of communicating with at least a particular additional file server node via a local area 
network, the method further comprising the step of: 

(e) the particular client node accessing a copy of a particular file at the particular 
additional file server node via the local area network. 
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57. (currently) A method for providing multi-user file storage comprising the 
steps of: 

(a) enabling each user of a pre-subscribed user group of one or more users 
operating an arbitrary client node at an arbitrary geographic location to communicate 
with a remote file server node via a wide area network, 

(b) enabling each user of the pre-subscribed user group to access the files of the 
file group via the respective client node in communication with the remote file server 
node via the wide area network, including permittin g, when the pre-subscribed user group 
includes at least two users, more than one user of the pre-subscribed user group to access 
the file group at the remote file server node simultaneously, 

(c) transferring an encrypted key from the remote file server node to a particular 
client node via a secure channel, the encrypted key being encrypted using an encryption 
function not known locally at the remote file server, the key being decryptable using a 
decryption function not known locally at the remote file server node, 

(d) decrypting the transferred key at the particular client node, and 

(e) using the key at the particular client node to decrypt information of a file 
downloaded from the remote file server node or to encrypt information of a file prior to 
uploading for storage at the remote file server node. 

58. (original) The method of claim 57 further comprising the step of: 

(f) compressing the information of the file prior to uploading the file or 
decompressing the information of the file subsequent to downloading the file. 
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59. (currently amended) A system for providing multi-user file storage 
comprising: 

a remote file server node for enabling each user of a pre-subscribed user group of 
one or more users to operate an arbitrary client node at an arbitrary geographic location to 
communicate with a remote file server node via a wide area network, 

a storage device at the remote file server node for enabling each user of the pre- 
subscribed user group to access the files of the file group via the respective client node in 
communication with the remote file server node via the wide area network, including 
permittin g, when the pre-subscribed user group includes at least two users, more than one 
user of the pre-subscribed user group to access the file group at the remote file server 
node simultaneously, and 

wherein the remote file server node is also for maintaining the integrity of the 
files at the remote file server node by controlling each access to each of the files at the 
remote file server node so that each access to each the files at the remote file server is 
performed, if at all, on a respective portion of the respective file as most recently updated 
at the remote file server node, wherein the respective portion is less than all of the 
respective file, thereby enabling all native operating system application programming 
interfaces to operate so that all multi-user applications accessing the files function as if 
the remote server, which stores the files, and client nodes, at which such multi-user 
applications execute, were on the same local area network. 
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60. (original) The system of claim 59 wherein the remote file server node is also 
configured for selectively downloading from the remote file server node to the particular 
client node via the wide area network a copy of at least a most recently updated portion 
of a particular file to be accessed by the particular client node and which the particular 
client node lacks, while a particular client node is in communication with the remote file 
server node, wherein at all times, each client node in communication with the remote file 
server node adheres to explicit and implicit file sharing modes specified by the native file 
application programming interfaces. 

61. (original) The system of claim 60 wherein the remote file server node is also 
configured for uploading from the particular client node information for updating the 
copy of the particular file stored at the remote file server node for effecting the 
modifications to the particular file, if the particular client node modifies the particular file 
while the particular client node is in communication with the remote file server node via 
the wide area network. 

62. (original) The system of claim 61 wherein the remote file server node is also 
configured for effecting the modifications by storing an incremental change to the copy 
of the particular file on the remote file server node. 

63. (original) The system of claim 61 wherein the remote file server node is also 
configured for effecting the modifications by over-writing at the remote file server node 
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the current copy of the particular file with a copy of the particular file as updated by the 
modifications. 



64. (original) The system of claim 61 wherein the remote file server is also 
configured for automatically downloading from the remote file server node to a hoarding 
client node the information for updating the copy of the particular file in response to the 
particular client node uploading the information for updating the copy of the particular 
file stored at the remote file server, if the hoarding client node in communication with the 
remote file server node has indicated that it desires to hoard the particular file. 

65. (original) The system of claim 60 wherein the remote file server node is also 
configured for relinquishing the particular file at the remote file server node and enabling 
other client nodes in communication with the remote file server via the wide area network 
to access the particular file, if the particular client node closes its communication channel 
with the remote file server node before closing the particular file. 

66. (original) The system of claim 60 further comprising: 

a particular client node for closing the communication channel between the 
particular client node and the remote file server node, 

wherein the remote file server node is also for enabling the particular client node 
to access the downloaded copy of the particular file while out of communication with the 
remote file server node. 
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67. (original) The system of claim 66 wherein the remote file server node is also 
configured for selectively enabling or preventing the updating of the copy of the 
particular file on the remote file server node according to modification information 
transparently and automatically uploaded from the particular client node when the 
particular client node re-establishes communication with the remote file server node via 
the wide area network, if the particular client node modifies the downloaded copy of the 
particular file while out of communication with the remote file server node, depending on 
the current modification status of the copy of the particular file at the remote file server 
node. 

68. (original) The system of claim 67 wherein the particular client node is also 
configured for selectively placing in a conflict bin associated only with, and maintained 
at, the particular client node information that depends on either: 

(I) modifications to the downloaded copy of the particular file, made by the client 
node while out of communication with the remote file server node; or 

(II) modifications to the copy of the particular file at the remote file server node, 
made while the client node was out of communication with the remote file server node, 
depending on the type of the modifications to the downloaded copy and the type of the 
modifications to the copy at the remote file server node. 

69. (original) The system of claim 60 wherein the remote file server node is also 
configured for selectively invalidating the downloaded copy of the particular file at the 
particular client node, depending on the modification status of the copy of the particular 
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file at the remote file server node, in response to determining that another client node has 
modified the particular file at the remote file server node, after the particular client node 
has downloaded the copy of the particular file. 

70. (original) The system of claim 69 wherein the remote file server node is also 
configured for downloading to the particular client node the valid copy of the file as 
modified by the other client node and enabling access by the particular client node to the 
valid downloaded copy of the particular file in lieu of the invalid downloaded copy of the 
particular file. 

71. (original) The system of claim 69 further comprising : 

a particular client node for closing the communication channel between the 
particular client node and the remote file server node, and re-establishing communication 
between the particular client node and the remote file server node prior to determining 
whether or not to invalidate the downloaded copy of the file. 

72. (original) The system of claim 59 wherein the remote file server node is also 
configured for transparently to, and without specific action of, one of the users of a first 
client node in communication with the remote file server node via the wide area network, 
downloading from the remote file server node via the wide area network to the first client 
node modifications to a copy of a particular file maintained at the remote file server node, 
wherein the modifications were made by another client node. 
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73. (original) The system of claim 59 further comprising: 

an interface for adapting file access at a particular client node by designating at 
the particular client node each one or more of the accessible files of the file group as 
stored on a virtual storage device, and enabling access to the designated files in a fashion 
which is indistinguishable, by users of, and applications executing at, the first client node, 
with access to one or more files stored on a physical storage device that is locally present 
at the first client node. 

74. (original) The system of claim 73 further comprising: 

a local storage device, which is physically present locally to the first client node, 
for storing a copy of each one or more of the designated accessible files, 
wherein, if a user of, or an application executing at, the particular client node, attempts to 
access a designated accessible file then: 

(I) the local storage device accesses the valid copy of the designated 
accessible file stored in the local storage device, if a valid copy of the designated 
accessible file, for which access is attempted, is stored at the local storage device, and 

(II) the particular client node downloads from the remote file server node 
to the particular client node via the wide area network, a copy of the designated 
accessible file and performing the access on the downloaded copy, if no valid copy of the 
designated accessible file, for which access is attempted, is stored at the local storage 
device. 

75. (original) The system of claim 60 further comprising: 
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another client node for refraining from contemporaneously accessing a copy of 
the particular file according to a file sharing access mode which is incompatible to the 
file sharing access modes currently available to the particular client node for accessing 
the particular file. 

76. (original) The system of claim 59 further comprising: 

a plurality of applications executing on a group of two or more client nodes which 
are permitted to simultaneously access the same file, depending on the granularity of file 
sharing to which the applications adhere. 

77. (original) The system of claim 76 wherein certain files are not accessed 
directly by each client node, and wherein each client is enabled to contemporaneously 
indirectly access such certain files through an intermediary node which performs each 
such access directly on behalf of the client nodes. 

78. (original) The system of claim 59 further comprising: 

a manager node for transmitting a message to an Internet email address of a user 
inviting the user to join the pre-subscribed user group, and 

a client node operated by the user for issuing a request to join the pre-subscribed 
user group using the information in the message. 

79. (original) The method of claim 78 wherein the message being usable only 
once to join the pre-subscribed user group. 
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80. (original) The system of claim 59 further comprising: 

a particular client node, wherein both the particular client node and remote server 
node are configured for authenticating a connection between a particular client node and 
the remote file server node so that the particular client node verifies the identity of the 
remote server node, and the remote server node verifies the identity of the user of the 
particular client node. 

81. (original) The system of claim 80 wherein the client node is further 
configured for encrypting data of a file at the particular client node using an encryption 
methodology known to the client node but not known to the remote file server node, and 
for uploading the encrypted data to the remote file server node, and wherein the storage 
device is further configured for storing the encrypted file data at the remote file server 
node. 

82. (original) The system of claim 81 wherein the particular client node is further 
configured for encrypting the file at the particular client node using a data key known 
only to the client node, for encrypting the data key using a public key, and for 
transmitting the encrypted data key to the remote file server node, and wherein the 
storage device is further configured for storing the encrypted data key at the remote file 
server node, wherein the remote file server node lacks the private key necessary to 
decrypt the data key. 
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83. (original) The system of claim 82 wherein the particular client node is further 
configured for encrypting the data key at the particular client node using a second public 
key associated with another user of the pre-subscribed user group, and for transmitting 
the second encrypted data key to the remote file server node, and wherein the storage 
device is further configured for storing the second encrypted data key at the remote file 
server node, wherein both the particular client node and the remote file server node lack 
the private key necessary to decrypt the data key. 

84. (original) The system of claim 80 wherein the storage device is further 
configured for retrieving the encrypted data of a particular file, wherein the remote file 
server node is further configured for transmitting the encrypted data to a specific client 
node, and wherein the specific client node uses a decryption methodology known to the 
specific client node but not known at the remote file server node, for decrypting the data. 

85. (original) The system of claim 80 wherein the remote file server node is 
further configured for receiving a request from a specific client node to access a 
particular file, for determining whether or not the particular access requested by the 
specific client node is permitted by privilege access rights associated with the particular 
file, and for only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

86. (original) The system of claim 59 wherein the remote file server node is 
further configured for receiving a request from a specific client node to access a 
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particular file, for determining whether or not the particular access requested by the 
specific client node is permitted by privilege access rights associated with the particular 
file, and for only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

87. (original) The system of claim 59 further comprising: 
a particular client node, 

wherein the remote file server node is further configured for transferring an 
encrypted key a particular client nodes via a secure channel, the key being encrypted 
using an encryption function not known locally at the remote file server node, 

wherein the particular client node is configured for decrypting the transferred key 
at the particular client node, and for using the key at the particular client node to decrypt 
information of a file downloaded from the remote file server node or to encrypt 
information of a file prior to uploading for storage at the remote file server node. 

88. (original) The system of claim 87 wherein the particular client node is further 
configured for compressing the information of the file prior to uploading the file or for 
decompressing the information of the file subsequent to downloading the file. 

89. (original) The system of claim 59 further comprising: 

a particular client node for compressing the information of the file prior to 
uploading the file or for decompressing the information of the file subsequent to 
downloading the file. 
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90. (original) The system of claim 59 wherein the remote file server node is also 
configured for enabling each user of another pre-subscribed user group of one or more 
users to access another group of files via a respective client node in communication with 
the remote server node via the wide area network, wherein each pre-subscribed user 
group includes a different subset of users but also have at least one particular user in 
common, 

wherein the particular user is able to contemporaneously access files in each group. 

91. (original) The system of claim 59 further comprising: 

one or more additional file server nodes at which the users are enabled to access 
one or more of the files. 

92. (original) The system of claim 91 further comprising: 

a particular client node capable of communicating with the additional file server 
nodes remotely via a wide area network, and configured for accessing a copy of a 
particular file on one of the remote file server node or a particular additional file server 
node which is most efficient for the particular client node. 

93. (original) The system of claim 91 further comprising: 

a particular client node capable of communicating with at least a particular 
additional file server node via a local area network, and configured for accessing a copy 
of a particular file at the particular additional file server node via the local area network. 
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94. (currently amended) A system for providing multi-user file storage 
comprising: 

a specific client node at an arbitrary geographic location, usable by a user of a 
pre-subscribed user group for communicating with a remote file server node via a wide 
area network, the remote file server enabling each user of the pre-subscribed user group 
to access the files of the file group via the respective client node in communication with 
the remote file server node via the wide area network, including permitting , when the pre- 
subscribed user group includes at least two users, more than one user of the pre- 
subscribed user group to access the file group at the remote file server node 
simultaneously, and 

an interface for adapting file access at the specific client node by designating at 
the specific client node each accessible file of the file group as stored on a virtual storage 
device, and enabling access to the designated files in a fashion which is indistinguishable, 
by users of, and applications executing at, the specific client node, with access to one or 
more files stored on a physical storage device that is locally present at the specific client 
node. 

95. (original) The system of claim 94 further comprising: 

a local storage device, which is physically present locally to the specific client 
node, for storing a copy of each one or more of the designated accessible files, 
wherein, if a user of, or an application executing at, the specific client node, attempts to 
access a designated accessible file then: 
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(I) the local storage device accesses the valid copy of the designated 
accessible file stored in the local storage device, if a valid copy of the designated 
accessible file, for which access is attempted, is stored at the local storage device, and 

(II) the specific client node downloads from the remote file server node to 
the specific client node via the wide area network, a copy of the designated accessible file 
and performing the access on the downloaded copy, if no valid copy of the designated 
accessible file, for which access is attempted, is stored at the local storage device. 

96. (original) The system of claim 94 further comprising: 

another client node for refraining from contemporaneously accessing a copy of 
the particular file according to a file sharing access mode which is incompatible to the 
file sharing access modes currently available to a particular client node for accessing the 
particular file. 

97. (original) The system of claim 94 further comprising: 

a plurality of applications executing on a group of two or more client nodes which 
are permitted to simultaneously access the same file, depending on the granularity of file 
sharing to which the applications adhere. 

98. (original) The system of claim 97 wherein certain files are not accessed 
directly by each client node, and wherein each client is enabled to contemporaneously 
indirectly access such certain files through an intermediary node which performs each 
such access directly on behalf of the client nodes. 
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99. (original) The system of claim 94 further comprising: 

a manager node for transmitting a message to an Internet email address of a user 
inviting the user to join the pre-subscribed user group, and 

a client node operated by the user for issuing a request to join the pre-subscribed user 
group using the information in the message. 

100. (original) The method of claim 99 wherein the message being usable only 
once to join the pre-subscribed user group. 

101. (original) The system of claim 95 further comprising: 

a particular client node, wherein both the particular client node and remote server 
node are configured for authenticating a connection between a particular client node and 
the remote file server node so that the particular client node verifies the identity of the 
remote server node, and the remote server node verifies the identity of the user of the 
particular client node. 

102. (original) The system of claim 101 wherein the client node is further 
configured for encrypting data of a file at the particular client node using an encryption 
methodology known to the client node but not known to the remote file server node, and 
for uploading the encrypted data to the remote file server node, and wherein the storage 
device is further configured for storing the encrypted file data at the remote file server 
node. 
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103. (original) The system of claim 102 wherein the particular client node is 
further configured for encrypting the file at the particular client node using a data key 
known only to the client node, for encrypting the data key using a public key, and for 
transmitting the encrypted data key to the remote file server node, and wherein the 
storage device is further configured for storing the encrypted data key at the remote file 
server node, wherein the remote file server node lacks the private key necessary to 
decrypt the data key. 

104. (original) The system of claim 103 wherein the particular client node is 
further configured for encrypting the data key at the particular client node using a second 
public key associated with another user of the pre-subscribed user group, and for 
transmitting the second encrypted data key to the remote file server node, and wherein 
the storage device is further configured for storing the second encrypted data key at the 
remote file server node, wherein both the particular client node and the remote file server 
node lack the private key necessary to decrypt the data key. 

105: (original) The system of claim 101 wherein the storage device is further 
configured for retrieving the encrypted data of a particular file, wherein the remote file 
server node is further configured for transmitting the encrypted data to a specific client 
node, and wherein the specific client node uses a decryption methodology known to the 
specific client node but not known at the remote file server node, for decrypting the data. 
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106. (original) The system of claim 101 wherein the remote file server node is 
further configured for receiving a request from a specific client node to access a 
particular file, for determining whether or not the particular access requested by the 
specific client node is permitted by privilege access rights associated with the particular 
file, and for only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

107. (original) The system of claim 94 wherein the remote file server node is 
further configured for receiving a request from a specific client node to access a 
particular file, for determining whether or not the particular access requested by the 
specific client node is permitted by privilege access rights associated with the particular 
file, and for only permitting the access to the particular file by the specific client node if 
permitted by the privilege access rights associated with the particular file. 

108. (original) The system of claim 94 further comprising: 
a particular client node, 

wherein the remote file server node is further configured for transferring an 
encrypted key a particular client nodes via a secure channel, the key being encrypted 
using an encryption function not known locally at the remote file server node, 

wherein the particular client node is configured for decrypting the transferred key 
at the particular client node, and for using the key at the particular client node to decrypt 
information of a file downloaded from the remote file server node or to encrypt 
information of a file prior to uploading for storage at the remote file server node. 
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109. (original) The system of claim 108 wherein the particular client node is 
further configured for compressing the information of the file prior to uploading the file 
or for decompressing the information of the file subsequent to downloading the file. 

110. (original) The system of claim 94 further comprising: 

a particular client node for compressing the information of the file prior to uploading the 
file or for decompressing the information of the file subsequent to downloading the file. 

111. (original) The system of claim 94 wherein the remote file server node is also 
configured for enabling each user of another pre-subscribed user group of one or more 
users to access another group of files via a respective client node in communication with 
the remote server node via the wide area network, wherein each pre-subscribed user 
group includes a different subset of users but also have at least one particular user in 
common, 

wherein the particular user is able to contemporaneously access files in each 

group. 

1 12. (original) The system of claim 94 further comprising: 

one or more additional file server nodes at which the users are enabled to access 
one or more of the files. 

113. (original) The system of claim 112 further comprising: 
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a particular client node capable of communicating with the additional file server 
nodes remotely via a wide area network, and configured for accessing a copy of a 
particular file on one of the remote file server node or a particular additional file server 
node which is most efficient for the particular client node. 

1 14. (original) The system of claim 1 12 further comprising: 

a particular client node capable of communicating with at least a particular additional file 
server node via a local area network, and configured for accessing a copy of a particular 
file at the particular additional file server node via the local area network. 

115. (currently amended) A system for providing multi-user file storage 
comprising: 

a remote file server node for enabling each user of a pre-subscribed user group of 
one or more users operating an arbitrary client node at an arbitrary geographic location to 
communicate with a remote file server node via a wide area network, 

a storage device at the remote file server node for enabling each user of the pre- 
subscribed user group to access the files of the file group via the respective client node in 
communication with the remote file server node via the wide area network, including 
permittin g, when the pre-subscribed user group includes at least two users, more than one 
user of the pre-subscribed user group to access the file group at the remote file server 
node simultaneously, and 

a particular client node, 
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wherein the remote file server node is also configured for transferring an 
encrypted key from the remote file server node to a particular client node via a secure 
channel, the encrypted key being encrypted using an encryption function not known 
locally at the remote file server node, the key being decryptable using a decryption 
function not known locally at the remote file server node, and 

wherein the particular client node is also configured for decrypting the transferred 
key at the particular client node, and for using the key at the particular client node to 
decrypt information of a file downloaded from the remote file server node or to encrypt 
information of a file prior to uploading for storage at the remote file server node. 

116. (original) The system of claim 115 wherein the particular client node is also 
configured for compressing the information of the file prior to uploading the file or 
decompressing the information of the file subsequent to downloading the file. 

117. (previously presented) The method of claim 1, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 

118. (previously presented) The method of claim 1, wherein said step (a) further 
comprising the step of: 

(al) connecting at least one of each said client node to said remote file server 
node via the Internet, wherein said at least one client node connects to the Internet via a 
wireless channel 
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119. (previously presented) The method of claim 118, wherein each of said at 
least one client node is a mobile client node. 

120. (previously presented) The method of claim 36, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 

121. (previously presented) The method of claim 36, wherein said step (a) further 
comprising the step of: 

(al) connecting at least one of each said client node to said remote file server 
node via the Internet, wherein said at least one client node connects to the Internet via a 
wireless channel. 

122. (previously presented) The method of claim 121, wherein each of said at 
least one client node is a mobile client node. 

123. (previously presented) The method of claim 57, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 

124. (previously presented) The method of claim 57, wherein said step (a) further 
comprising the step of: 
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(al) connecting at least one of each said client node to said remote file server 
node via the Internet, wherein said at least one client node connects to the Internet via a 
wireless channel. 

125. (previously presented) The method of claim 124, wherein each of said at 
least one client node is a mobile client node. 

126. (previously presented) The system of claim 59, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 

127. (previously presented) The system of claim 59, wherein at least one of each 
said client node is connected to said remote file server node via the Internet, and wherein 
said at least one client node connects to the Internet via a wireless channel. 

128. (previously presented) The system of claim 127, wherein each of said at least 
one client node is a mobile client node. 

129. (previously presented) The system of claim 94, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 



41 



Serial No.: 09/703,884 48452-047 

130. (previously presented) The system of claim 94, wherein at least one of each 
said client node is connected to said remote file server node via the Internet, and wherein 
said at least one client node connects to the Internet via a wireless channel. 

131. (previously presented) The system of claim 130, wherein each of said at least 
one client node is a mobile client node. 

132. (previously presented) The system of claim 115, wherein at least one of said 
respective client node being in communication with said remote file server node over at 
least one wireless communications link. 

133. (previously presented) The system of claim 115, wherein at least one of each 
said client node is connected to said remote file server node via the Internet, and wherein 
said at least one client node connects to the Internet via a wireless channel. 

134. (previously presented) The system of claim 133, wherein each of said at least 
one client node is a mobile client node. 
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